General This Technical Specification establishes security requirements for TWSs that can be used by a TSP in order to issue QCs and Non-Qualified Certificates (NQCs) as well as electronic time-stamps in accordance with Dir.1999/93/EC and with [Reg.910/2014/EU]. Security requirements for the Subject Device Provision Service, which includes SCDev/QSCD provision to subjects, are defined in this TS. However, requirements specific to SCDev/QSCD devices, as used by subjects of the TSP, are outside the scope of this TS. These requirements are defined as Common Criteria [CC] Protection Profiles (PP) in the EN 419211 series. Recommendations for the cryptographic algorithms to be supported by TWSs are provided in ETSI/TS 119312. Although this TS is based on the use of public key cryptography, it does not require or define any particular communication protocol or format for electronic signatures, certificates, certificate revocation lists, certificate status information and time-stamp tokens. It only assumes certain types of information to be present in the certificates in accordance with Annex I of Dir.1999/93/EC and of [Reg.910/2014/EU]. Interoperability between TSP systems and subject systems is outside the scope of this document.
PD CEN/TS 419261:2015 Referenced Document
EN 1627:2011 Pedestrian doorsets, windows, curtain walling, grilles and shutters - Burglar resistance - Requirements and classification
EN 419211-1:2014 Protection profiles for secure signature creation device - Part 1: Overview
EN 419211-2:2013 Protection profiles for secure signature creation device - Part 2: Device with key generation
EN 419211-3:2013 Protection profiles for secure signature creation device - Part 3: Device with key import*, 2024-04-20 Update
EN 419211-4:2013 Protection profiles for secure signature creation device - Part 4: Extension for device with key generation and trusted channel to certificate generation application*, 2024-04-20 Update
EN 419211-5:2013 Protection profiles for secure signature creation device - Part 5: Extension for device with key generation and trusted channel to signature creation application*, 2024-04-20 Update
EN 419211-6:2014 Protection profiles for secure signature creation device - Part 6: Extension for device with key import and trusted channel to signature creation application
ISO 7498-2:1989 Information processing systems; Open Systems Interconnection; basis reference model; Part 2: Security architecture
ISO/IEC 9594 Information technology-Open systems interconnection-Part 9: The Directory: Replication*, 2024-04-01 Update
PD CEN/TS 419261:2015 history
2015PD CEN/TS 419261:2015 Security requirements for trustworthy systems managing certificates and time-stamps